search

crimethinc / website

Ruby on Rails app that powers crimethinc.com
https://crimethinc.com
Creative Commons Zero v1.0 Universal
101 stars 31 forks source link

Bump the bundler-all group with 12 updates #3865

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps the bundler-all group with 12 updates:

Package From To
aws-sdk-s3 1.152.0 1.152.3
aws-partitions 1.941.0 1.944.0
aws-sdk-kms 1.83.0 1.84.0
erubi 1.12.0 1.13.0
irb 1.13.1 1.13.2
mini_magick 4.12.0 4.13.1
net-imap 0.4.12 0.4.13
rack 3.0.11 3.1.3
reline 0.5.8 0.5.9
rexml 3.2.9 3.3.0
stringio 3.1.0 3.1.1
zeitwerk 2.6.15 2.6.16

Updates aws-sdk-s3 from 1.152.0 to 1.152.3

Changelog

Sourced from aws-sdk-s3's changelog.

1.152.3 (2024-06-13)

  • Issue - Handle 200 errors for all S3 operations that do not have streaming responses.

1.152.2 (2024-06-12)

  • Issue - Revert Handling of 200 errors for all S3 operations.

1.152.1 (2024-06-10)

  • Issue - Handle 200 errors for all S3 operations that do not have streaming responses.
Commits


Updates aws-partitions from 1.941.0 to 1.944.0

Changelog

Sourced from aws-partitions's changelog.

1.944.0 (2024-06-12)

  • Feature - Added support for enumerating regions for Aws::AppTest.

1.943.0 (2024-06-11)

  • Feature - Added support for enumerating regions for Aws::PcaConnectorScep.

1.942.0 (2024-06-10)

  • Feature - Added support for enumerating regions for Aws::ApplicationSignals.
Commits


Updates aws-sdk-kms from 1.83.0 to 1.84.0

Changelog

Sourced from aws-sdk-kms's changelog.

1.84.0 (2024-06-13)

  • Feature - This feature allows customers to use their keys stored in KMS to derive a shared secret which can then be used to establish a secured channel for communication, provide proof of possession, or establish trust with other parties.
Commits


Updates erubi from 1.12.0 to 1.13.0

Changelog

Sourced from erubi's changelog.

=== 1.13.0 (2024-06-13)

  • Define Erubi.h as a module function (jeremyevans)

  • Add erubi/capture_block, supporting capturing block output via standard <%= and <%== tags (jeremyevans)

Commits
  • 9375cc5 Bump version to 1.13.0
  • bb31cd7 Add erubi/capture_block to the gem
  • 241daf9 Adjust nocov markers
  • 48f09d0 Define Erubi.h as a module function
  • 0ba6e1f Add erubi/capture_block, supporting capturing block output via standard <%= a...
  • 7300487 Restructure tests to make it so the same basic tests can be used for multiple...
  • e9d96c4 Add Ruby 3.3 to CI and bump actions/checkout to v4
  • 4d24561 Switch from hanna-nouveau to hanna
  • 5955573 Stop testing Ruby 2.2 in CI as it no longer works with ubuntu-latest
  • c7f0d4b Move to actions/checkout@v3
  • Additional commits viewable in compare view


Updates irb from 1.13.1 to 1.13.2

Release notes

Sourced from irb's releases.

v1.13.2

What's Changed

🐛 Bug Fixes

📚 Documentation

  • Help users choose between helper methods and commands in the extension document by @​st0012 in ruby/irb#965

🛠 Other Changes

New Contributors

Full Changelog: https://github.com/ruby/irb/compare/v1.13.1...v1.13.2

Commits
  • 35de7da Bump version to v1.13.2 (#970)
  • bad7492 Invalid encoding symbol now raises SyntaxError also in 3.3 (#969)
  • 905184f Cleanup irbrc generator cache always at teardown (#968)
  • 3512020 fix typos in the Index of Command-Line Options
  • ad64279 Suppress Ruby warnings in certain backtrace filtering tests (#966)
  • dd339e6 Add a section to guide users choose between helper methods and commands (#965)
  • 1d627ce Add accidentally dropped disable_irb command back (#964)
  • a572180 Remove useless Reline::Key.new and update wrong comment for alt+d (#963)
  • 2f42b23 Reorder ruby lex clauses for unrecoverable first (#956)
  • 7d60349 Clean up tmpdir
  • Additional commits viewable in compare view


Updates mini_magick from 4.12.0 to 4.13.1

Release notes

Sourced from mini_magick's releases.

v4.13.1

  • Revert an optimization to save an identify call when retrieving image information by doing this work while validating on create, as this caused validation to hang for some SVG files.

v4.13.0

  • Warnings about convert command being deprecated on ImageMagick 7 are now ignored.

    The next major version of MiniMagick will switch to using magick on IM7, as it might not be fully compatible with magick convert.

  • If processing images is returning warnings (e.g. TIFF images tend to do that), but they're otherwise fine, you can prevent MiniMagick from forwarding warnings to standard error:

    MiniMagick.configure do |config|
  config.warnings = false
end

  • When the ImageMagick subprocess has been abruptly killed by the operating system (e.g. OOM kill), in which case the exit status will be unknown, MiniMagick will now handle this gracefully.

  • When validating the image, the cheap info will now be automatically stored on the MiniMagick::Image object, so a subsequent call to #type, #width, #height, #dimensions, #size or #human_size will not call identify again.

  • The posix-spawn shell backend has been deprecated (see minimagick/minimagick#558).

    Ruby uses vfork since Ruby 2.2, so posix-spawn doesn't provide performance benefits on relevant Ruby versions anymore. Additionally, Ruby 3 switched to non-blocking pipes by default, which should hopefully resolve deadlocks with open3 (see minimagick/minimagick#347 and minimagick/minimagick#437). Due to this change, posix-spawn is currently incompatible with Ruby 3.

  • MiniMagick::Image#mime_type has been deprecated, due to returning incorrect MIME type for formats not starting with image/*.

    ImageMagick does have a way to return the MIME type, but it requires reading the whole image, which is significantly slower. It's recommended to use Marcel or MimeMagic for determining MIME type from magic header. Alternatively, you can use mime-types or MiniMime for obtaining MIME type from file extension or from MiniMagick::Image#type.

  • Ruby 2.3+ is now required.

Commits
  • 58a6a5e Bump to 4.13.1
  • 75432bb Revert "Save format, dimensions, size, etc when validating to avoid unnecessa...
  • ca8d406 Bump to 4.13.0
  • c39fbef Ignore warnings about convert command being deprecated on IM7
  • c7c5d2f Allow silencing warnings
  • ece9f09 Save format, dimensions, size, etc when validating to avoid unnecessary secon...
  • 6cc4ecf Also add explicit permissions to workflows (#566)
  • fe2951c Fix CI badge (#564)
  • ac2a94a Deprecate MiniMagick::Image#mime_type
  • 67547cd Handle OOM kills
  • Additional commits viewable in compare view


Updates net-imap from 0.4.12 to 0.4.13

Release notes

Sourced from net-imap's releases.

v0.4.13

What's Changed

✨ Added features

  • 🔧 Add Config class for debug, open_timeout, and idle_response_timeout by @​nevans in ruby/net-imap#291
    • Net::IMAP.config for global configuration. This enables global defaults for previously client-local configuration:
      • open_timeout
      • idle_response_timeout
    • config keyword parameters for Net::IMAP.new
    • Net::IMAP#config for client configuration. This enables client-local overrides of previously global configuration:
      • debug
    • ♻️ Minor Config class tidy up by @​nevans in ruby/net-imap#295
  • 🔧 Add config option for sasl_ir by @​nevans in ruby/net-imap#294
  • 🔊 Add config option for responses_without_block by @​nevans in ruby/net-imap#293

📖 Documentation

🛠️ Other changes

Full Changelog: https://github.com/ruby/net-imap/compare/v0.4.12...v0.4.13

Commits
  • b205add 🔖 Bump version to 0.4.13
  • 3add63e 🔀 Merge pull request #299 from ruby/gemspec-ignore
  • 0924b7e ♻️ Use dir, not File.expand_path '..', FILE
  • c5afa83 📦 Don't keep .github, .gitignore, .mailmap in gem
  • ad4d9aa 📚 Improve rdoc for Net::IMAP.new ssl: params
  • 05d64a0 📚 Update rdoc for Config and related updates
  • 5f12016 🔀 Merge pull request #293 from ruby/config-responses_without_block
  • ca8e26d 🔧 Check type for config.responses_without_block
  • 3c0be7d 🔊 Warn about deprecated responses usage
  • 7e3148c 🔧 Add config option for sasl_ir
  • Additional commits viewable in compare view


Updates rack from 3.0.11 to 3.1.3

Changelog

Sourced from rack's changelog.

Changelog

All notable changes to this project will be documented in this file. For info on how to format all future additions to this file please reference Keep A Changelog.

Unreleased

Fixed

Added

Changed

Removed

[3.1.2] - 2024-06-11

  • Rack::Response will take in to consideration chunked encoding responses (#2204, [@​tenderlove])

[3.1.1] - 2024-06-11

  • Oops! I shouldn't have shipped that

[3.1.0] - 2024-06-11

Rack v3.1 is primarily a maintenance release that removes features deprecated in Rack v3.0. Alongside these removals, there are several improvements to the Rack SPEC, mainly focused on enhancing input and output handling. These changes aim to make Rack more efficient and align better with the requirements of server implementations and relevant HTTP specifications.

SPEC Changes

Added

  • Introduce Rack::Multipart::MissingInputError for improved handling of missing input in #parse_multipart. (#2018, [@​ioquatix])
  • Introduce module Rack::BadRequest which is included in multipart and query parser errors. (#2019, [@​ioquatix])
  • Add .mjs MIME type (#2057, @​axilleas)
  • set_cookie_header utility now supports the partitioned cookie attribute. This is required by Chrome in some embedded contexts. (#2131, @​flavio-b)

... (truncated)

Commits


Updates reline from 0.5.8 to 0.5.9

Release notes

Sourced from reline's releases.

v0.5.9

What's Changed

🐛 Bug Fixes

🛠 Other Changes

New Contributors

Full Changelog: https://github.com/ruby/reline/compare/v0.5.8...v0.5.9

Commits


Updates rexml from 3.2.9 to 3.3.0

Release notes

Sourced from rexml's releases.

REXML 3.3.0 - 2024-06-11

Improvements

  • Added support for strscan 0.7.0 installed with Ruby 2.6.
    • GH-142
    • Reported by Fernando Trigoso.

Thanks

  • Fernando Trigoso
Changelog

Sourced from rexml's changelog.

3.3.0 - 2024-06-11 {#version-3-3-0}

Improvements

  • Added support for strscan 0.7.0 installed with Ruby 2.6.
    • GH-142
    • Reported by Fernando Trigoso.

Thanks

  • Fernando Trigoso
Commits


Updates stringio from 3.1.0 to 3.1.1

Release notes

Sourced from stringio's releases.

stringio 3.1.1 - 2024-06-13

Improvements

Fixes

Thanks

  • Tiago Cardoso
Changelog

Sourced from stringio's changelog.

3.1.1 - 2024-06-13

Improvements

Fixes

Thanks

  • Tiago Cardoso
Commits


Updates zeitwerk from 2.6.15 to 2.6.16

Changelog

Sourced from zeitwerk's changelog.

2.6.16 (15 June 2024)

  • Logging prints a message when a directory that was not ignored is skipped anyway because it contains no Ruby files.

  • Internal refactors.

Commits
  • 4f285de Ready for 2.6.16
  • b6f7015 Remove ruby-lsp from the Gemfile
  • 4105648 Introduces the private class Zeitwerk::Cref
  • 95f7c04 Add ruby-lsp to the Gemfile
  • 756717b Merge pull request #295 from kianmeng/fix-typos
  • 375d751 Fix typos
  • a5bd1df Log directories being ignored for having no Ruby file
  • ba26886 Reword and reorder logging test
  • See full diff in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions